10 matches found
CVE-2021-21783
A code execution vulnerability exists in the WS-Addressing plugin functionality of Genivia gSOAP 2.8.107. A specially crafted SOAP request can lead to remote code execution. An attacker can send an HTTP request to trigger this vulnerability...
CVE-2021-21783
A code execution vulnerability exists in the WS-Addressing plugin functionality of Genivia gSOAP 2.8.107. A specially crafted SOAP request can lead to remote code execution. An attacker can send an HTTP request to trigger this vulnerability...
Fedora 33 : gsoap (2021-faea36a9c3)
The remote Fedora 33 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2021-faea36a9c3 advisory. - A denial-of-service vulnerability exists in the WS-Security plugin functionality of Genivia gSOAP 2.8.107. A specially crafted SOAP request can le...
Cross site request forgery (csrf)
A denial-of-service vulnerability exists in the WS-Security plugin functionality of Genivia gSOAP 2.8.107. A specially crafted SOAP request can lead to denial of service. An attacker can send an HTTP request to trigger this vulnerability...
Cross site request forgery (csrf)
A denial-of-service vulnerability exists in the WS-Security plugin functionality of Genivia gSOAP 2.8.107. A specially crafted SOAP request can lead to denial of service. An attacker can send an HTTP request to trigger this vulnerability...
CVE-2020-13575
CVE-2020-13575 affects Genivia gSOAP 2.8.107. The WS-Addressing plugin vulnerability allows a remote attacker to trigger denial of service via a specially crafted SOAP request over HTTP, with CVSS v3.1 base score 7.5 (HIGH). Public advisories confirm fixes in multiple distributions: Debian 2.8.75...
CVE-2020-13578
CVE-2020-13578 affects Genivia gSOAP 2.8.107, exposing a denial-of-service via the WS-Security plugin. A specially crafted SOAP request over HTTP can trigger the DoS condition. Public details in connected records confirm the vulnerability in the WS-Security plugin and indicate fixes have been rel...
CVE-2020-13574
Genivia gSOAP 2.8.107 contains a denial-of-service vulnerability in the WS-Security plugin. A remote attacker can trigger a specially crafted SOAP request over HTTP, causing availability impact due to a NULL pointer dereference in the WS-Security plugin. Concrete details appear in connected advis...
CVE-2020-13578
A denial-of-service vulnerability exists in the WS-Security plugin functionality of Genivia gSOAP 2.8.107. A specially crafted SOAP request can lead to denial of service. An attacker can send an HTTP request to trigger this vulnerability...
Genivia gSOAP WS-Security plugin denial-of-service vulnerability
Summary A denial-of-service vulnerability exists in the WS-Security plugin functionality of Genivia gSOAP 2.8.107. A specially crafted SOAP request can lead to denial of service. An attacker can send an HTTP request to trigger this vulnerability. Tested Versions Genivia gSOAP 2.8.107 Product URLs...